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^ (5 7 ) Abstract: An authentication and/or tracking system for identifying, tracking, authenticating and/or otherwise checking the 
legitimacy of one or more items which include a coded identity tag or mark, the system comprising identification means for reading 
Q said coded identity tag or mark and identifying said one or more items, storage means for storing information relating to the location, 
^ whether actual or intended, origin and/or ownership of said one or more items, and means for displaying or otherwise providing or 
^ verifying said information relating to an item when its identity tag or mark has been read. 
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REMOTE AUTHENTICATION SYSTEM 

This invention relates to a remote an authentication 
database that could be used to allow monitoring and control of 
marked items which in turn facilitates product authentication 
and identification of said items. 
5 This invention encompasses three novel aspects. First 

is a means of using unique identifiers on appropriate items in 
order to achieve a level of monitoring and control over such 
items that has not been possible previously. Second is a means 
of protecting the relevant data. Third is a coded fibre which 
10 can be used to mark suitable products. 

BACKGROUND TO THE INVENTION 

Some problems which the system of the invention 
(hereafter just "system")- alleviates include: counterfeit 
trading, product recall, parallel trading, shoplifting and many 

15 other forms of theft . 

Counterfeiting causes loss of profits to Brand Owners 
through loss of sales and loss of reputation. A major factor 
in dealing with the problem is that it is often very difficult 
for consumers to detect counterfeit items. 

2 0 Faulty goods often need to be recalled. The problem 

here is that manufacturers can seldom trace where their goods 
are at the time they need to be recalled. 

Theft in the form of shoplifting in particular is a 
well-recognised problem within all areas of commercial retail. 

25 The problem here is the difficulty of discovering a) whether 
a thief is leaving the premises with stolen property and b) 
distinguishing between goods which have been paid for and those 
which have not . 

Parallel Importing costs manufacturers by undercutting 

30 the prices they set for a-ilocal market. It may also render them 
legally liable when goods intended for country U A" do not meet 
the legal standards set in country "B" where the price is 
higher and being undercut by parallel imports. 
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Inventory Control . Manufacturers do not know how much 
stock of their product remains unsold within the supply chain. 

PRIOR ART 

International patent application WO99/043 64-A1, which 
5 describes a method of verifying the authenticity of goods, 
includes generating one or more random codes and storing the 
one or more random codes in a database. The goods are then 
marked with one of the generated random codes such that each 
of the goods contains their own unique random code. A reading 

10 and processing method is used to read the random code carried 
by a marked item and compare this code against those stored in 
the database. If the random code is found to be valid, the 
processing method can determine (from information held in a 
local database) whether or not that code has been read 

15 previously on another marked item, thereby verifying that the 
item is authentic (or otherwise) . 

There are a number of problems and disadvantages 
associated with the above described arrangement. Firstly if, 
for example, a set of random codes were either duplicated, or 

20 generated and obtained illegitimately, and applied to a batch 
of counterfeit goods, the codes would still be found by the 
processing method to be valid and, in many cases, not 
previously read, thereby verifying the authenticity, of goods 
which are in fact counterfeit. This problem is exacerbated by 

25 the difficulties inherently associated with updating a local 
database with, for example, all non-local sales of branded 
goods in real time. 

Further, international patent application number 
WO99/04364-A1 describes a method of detecting diversion of 

3 0 goods from a desired channel or channels of distribution. This 
method involves the generation of encrypted codes (each having 
a random portion and a non-random portion) , which are applied 
to a batch of goods so that each item has its own unique 
encrypted code. The encryption of the codes is effected by an 
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encryption key, each encryption key being unique to a 
particular channel or channels. .Subsequently, within a 
particular channel of distribution, the various goods are 
inspected and it is verified whether the decryption key used 
5 on the code successfully reproduces the non-random portion 
which is uniquely dedicated for the , channel distribution in 
question. Consequently, the method identifies whether a 
diversion of goods has occurred if the decryption key does not 
match that used on the inspected goods. 

10 In other words, if a channel should be using Public 

Key(PK) A and a product is intercepted with a PK code B mark 
on it, the use of the wrong PK indicates that the product has 
been diverted from its proper distribution channel. This makes 
it necessary to store a large number of PK's in the supply 

15 chain's computers. 

Further, the requirement for treating different 
channels of distribution separately makes the scheme 
unnecessarily expensive to implement, and each implementation 
must be tailored separately. In addition, the reliance, of 

20 decryption at the retail end in particular implies the need for 
special readers or dedicated local computer technology, which 
takes the adoption of the proposed scheme relatively expensive. 

The scheme described in international patent 
application number WO99/04364-A1 , may include a tracking or 

25 similar function which may be implemented by including in the 
non-random portion a secret encrypted portion containing 
tracking information. The codes may subsequently be decoded to 
determine tracking information, such as whether a tax has been 
paid. 

30 

There are, however, a number of disadvantages 
associated with this. Using the tobacco industry's 

requirements as an example. • The government would have to 
create a large number of codes, keep them secure and issue them 
35 in advance of such payment-)- not to manufacturers (who might be 



1 » 

*> 

WO 01/99063 PCT/GB01/02772 

4 

in a position to exert true security) , but to those who have 
to pay duty (at the point of sale) . This results in several 
weaknesses. Firstly, there are tens of thousands of retail 
outlets that would have to acquire the relevant equipment to 
5 adopt this scheme, and each of these outlets would have to be 
supplied with sufficient unforgeable codes to apply to the 
goods (they cannot be pre-applied because, until bought, no tax 
has been paid) . Secondly, the routine sales areas must 
therefore adopt security measures which are likely to be 

10 extremely unrealistic. Thirdly, consider the case where 
France, Israel and South Africa (for example) want to adopt the 
scheme; this poses the problem of whose code to use to prove 
that the correct tax has been paid. Finally, the prior art 
proposal requires a huge number of different codes to be 

15 created in order to deal with different purposes. 

International patent application WO99/04364-A1 mentions 
the use of one-way hash functions, but still requires the use 
of combination codes and PK ! s, whereas in the present invention 
no further form of encryption is required. 

20 Further, in WO99/04364-A1, a "hash" message is 

reconstructed by using a readable field until a match is found. 
However, this is quite time consuming and laborious. In a 
preferred aspect of the present invention, there is included 
a database in which is stored the original codes alongside 

25 their "hash" values. This "field" can be indexed so that the 
matching of "hash" values is substantially instantaneous (less 
than one second in over a billion records) , just as it would 
be if one were searching for the original code. 

SUMMARY OF THE INVENTION 

30 In accordance with a first aspect of the present 

invention, there is provided an authentication and/or tracking 
system for identifying, tracking, authenticating and/or 
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otherwise checking the legitimacy of one or more items which 
include a coded identity tag or mark, the system comprising 
identification means for reading said coded identity tag or 
mark and identifying said one o± more items, storage means for 
5 storing information relating to the location, whether actual 
or intended, origin, and/or ownership of said one or more 
items, and means for displaying or otherwise providing or 
verifying said information. 

The first aspect of the present invention also extends 

10 to a method of identifying, tracking, . authenticating and/or 
otherwise checking the legitimacy of one or more items which 
include a coded identity tag or mark, comprising the steps of 
reading said identity tag or mark and identifying said one or 
more items, storing information relating to the location, 

15 whether actual or intended, origin and/or ownership of said one 
or more items, and displaying or otherwise providing or 
verifying the information relating to an item when its identity 
tag or mark has been read. This coded identity tag or mark can 
amongst others be in the form of a simple printed validation 

20 reference (VR) which could be represented by a bar code, bar 
coded tear-tape or security thread, radio frequency tag or ink 
(visual, fluorescent or magnetic) , optical device such as a 
hologram or digitally printed device, organic chemical (such 
as a DNA tag) or inorganic chemical or complex printed image. 

25 Products which manufacturers need to protect from the 

above problems are provided with a unique identifier which is 
securely stored and subsequently traceable using a publicly 
accessible central authentication database. This unique 
reference is referred to within the system as a Validation 

3 0 Reference, hereafter abbreviated VR. 

The VR can be physically attached to the product in any 
way that is deemed suitable by the manufacturer. 
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The VR must be verifiably unique within the product 
type for the manufacturer. 

All the VRs created by a manufacturer must be stored on 
a centrally and publicly accessible database. This database 
5 must store basic despatch details in addition to the VR. It 
must also record the inquiries or authentication attempts made 
against each VR. 

Various agencies and consumers will need to access this 
database. They will typically enter, into a computer based 

10 form, the VR attached to the product and the system will inform 
them whether or not the VR has a match in the central database. 
A match indicates that the product is probably authentic, 
unless the VR has already been registered elsewhere. In 
addition, the time and place of authentication are also 

15 considered. If a valid VR is in the wrong place or in the right 
place but at the wrong time, this indicates the probability of 
counterfeit. 

It is essential that, until the marked goods are 
actively selling from retail sites, VRs are not accessible to 
20 potential counterfeiters. 

In the preferred embodiment of the system, the 
requirement to ensure that VRs are kept out of the hands of 
counterfeiters is met by a novel method of storing the valuable 
data. Instead of storing plaintext, the VR is converted to a 

25 ''message digest" using a "one-way "hash" function", 
subsequently referred to as a "hash" . That digest is stored in 
place of the VR. Such digests are provably irreversible. The 
only method of decoding one is to generate sufficient random 
strings to ensure that a match is found. For the "hash" 

3 0 function used in the preferred embodiment, this means that if 
10,000 hashes were to come into the possession of a 
counterfeiter, he would need to create approximately 1.3 x 10 27 
strings to find a single match amongst the 10,000. This is 
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currently computationally infeasible in that by today's 
standards each such search would require some third of a 
million years processing time of the worlds fastest computers. 

As VRs in this form are substantially of no value to 
5 the counterfeiter, the security problem of guarding the data 
on the central database is considerably reduced. 

For many products that require protection, the database 
will provide the first step in tackling a case of counterfeit 
goods. It will identify that a problem exists. It will then be 

10 necessary to prove, to the satisfaction of a court, that the 
product either is (and purports not to be) the genuine article 
or is counterfeit (but purports to be genuine) . This may 
frequently require a forensic test. For products that don't 
include unique forensic markers the promoters of the invention 

15 offer a coded fibre which can be deployed in a number of ways 
in order to provide the required evidence. It is described in 
detail in European Patent No. 0721529. 

Having been thus marked and having stored the 
information relating to that mark, it becomes possible to 

20 tackle the problems outlined above. In summary, one of the key 
differences between the present invention and the arrangement 
described in WO99/04364 -Al is that that prior art arrangement 
envisages "tracking" to be a passive function achieved by means 
of selective code generation whereby the code indicates the 

25 prospective destination. In the present invention, the use of 
active tracking is much more flexible and universally 
applicable. Only one code is required wherever the goods are 
destined to arrive. The transit details are preferably stored 
separately in association with that code. Field checking and 

30 preferably consumer registration is used to determine where 

•.I 

goods are, and the database is used to determine whether or not 
that is where they should be. 

If no VR exists either on a product that should display 
the code or a VR appears on a product but not within, the 
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authentication database then the product cannot be legitimate. 

If a VR exists but has already been registered as in 
the hands of a consumer, or other legitimate holder then either 
the registered product or the one being checked can reasonably 
5 be assumed to be counterfeit. Forensic testing might then be 
required to establish which one is genuine. This is an example 
of where th$ coded fibre might be usefully deployed. 

If a VR exists but is reported in the wrong place or at 
the wrong time then it can reasonably be assumed to be 
10 counterfeit. 

If a product carrying a VR is tracked going through the 
door of a retail outlet and it hasn't been paid for it can 
reasonably be assumed that it is being stolen. 

To be effective, the VR must contain a unique element 
15 that is verif iably not associated with any other similar item 
produced by the relevant manufacturer. 

This is a simple matter for appropriate software. It 
does not matter if two unrelated items share a VR. The 
combination of their make, model and VR will still produce a 
20 universally unique identifier 

Preferably, the method used to attach the VR should be 
compatible with (i.e. readable by) the machine readers likely 
to be already in situ throughout the supply chain. This 
alleviates the huge expense of supplying a new infrastructure 
2 5 to service the system. Provided this criterion is met, any 
method of labelling or attaching the VR which suits the 
manufacturer will be compatible with the system. Hereafter, all 
such means are referred to generically as "labels" . 

For consumer registration purposes it is currently 
30 essential that the VR is readable by the consumer. This means 
it must appear visually in plaintext. Future developments may 
allow other options. 

For asset tracking, ant i- the ft and some anti- 
counterfeiting purposes (where, for example, a forensic marker 
35 is desirable), the mark may need to be covert and/or 
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structurally incorporated into the item. 

If an item requires more than one of the above 
protections, it may well also require more than one tag. It may 
also use different data in eac?h tag. For example, a pair of 
5 Jeans may have a human readable label beneath a standard 
barcode for machine readability in order to facilitate the 
tracking and registration objectives. These may share the same 
code. Manufacturers may, in addition however, incorporate the 
aforementioned coded fibres into the fabric of the jeans at the 

10 weaving stage. The codes used for this purpose could be 
unrelated to the previous codes and may, for example, only be 
readable under a microscope in a forensic laboratory engaged 
to verify authenticity. 

In accordance with a second aspect of the invention, 

15 there is provided a data management system for passing or 
identifying data between a first node and a second node, said 
first and second nodes independently having access (direct or 
otherwise) to a copy of said data, said first node having means 
for converting said data into a substantially irreversibly 

20 encrypted code representative of said data and passing only 
said code (i.e. not said data) to said second node, said second 
node having means for identifying the data represented by said 
code . 

The second aspect of the present invention also extends 
25 to a method of data management for securely passing or 
identifying data between a first node and a second node, the 
method comprising the steps of providing independent access 
(direct or otherwise) to said data to each of said first and 
second nodes, converting at said first node said data into a 
3 0 substantially irreversible encrypted code representative of 
said data, passing only said code (i.e. not said data) from 
said first node to said "becond node, and identifying at said 
second node the data represented by said code. 

Thus, the second aspect of the present invention 
35 provides a method and system whereby the functional 
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requirements of key data can be entirely fulfilled by coded 
replacements for the data, specifically by means of converting 
the key data into codes or digests using one-way encryption 
techniques, such as one-way <*hash functions or any other 
5 (possibly future) algorithms which achieve substantially the 
same end (i.e. the creation of substantially irreversibly 
encrypted codes or digests representative of the key data, 
allowing for more secure handling of the data. It will be 
apparent that no decryption of the code is required at the 

10 second node (because it has independent access to the data in 
its own right), simply recognition thereof. 

Preferred unique identifiers will be designed to make 
it impossible for potential fraudsters to abuse the system. For 
example, by creating a key consisting of 20 random characters 

15 representing any one of 256 ASCII (like) symbols, this makes 
possible a code with 2Q 256 possible combinations - well beyond 
the ability of existing computer processing capacity to crack. 
Because such codes would include unprintable characters, they 
would, currently, be suitable for machine readability only. 

20 For product registration, where the code needs to be 

retrieved visually, a code based on 20 of the 36 upper case 
unambiguous keyboard characters found on most European and 
American keyboards allows 36 20 combinations. This is still 
considered to be considerably beyond present day .computing 

25 capacity. 

To prevent errors on input, the preferred embodiment 
would incorporate a 2 5 -character string incorporating 1 check 
character for each 4 random characters. This would be presented 
in 5 blocks of 5 characters - similar to popular modern 

30 software license keys. 

To allow remote interrogation of the database, so 
called "thin client" software will be distributed to allow 
consumers to enter the VRs with minimal errors. Their input 
will be converted to its corresponding "hash" values before 

35 being passed to the central database for matching. 
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Thin client software will also be distributed to 
agencies such as Customs, Police (public and private) and key- 
points in the supply chain. This version of the software will 
permit machine input and interrogation of data other than just 
5 VRs. 

Preferably, the VRs will be generated by the 
manufacturers only shortly before the labels are required. The 
labels will be printed, attached and scanned as the goods are 
packed into cartons. The Carton identifiers will be stored. 

10 Cartons will be scanned as they are loaded onto pallets (or 
similar) and pallets will be scanned as they are loaded into 
consignments (etc) . Relevant identifiers will be stored for 
however many packing stages are required. 

When the consignment is ready to leave, the 

15 manufacturer will use appropriate software to prepare a file 
containing one record per VR. Each such record will also 
contain the above identifiers. It will also, preferably contain 
the relevant order numbers, despatch date, source and 
destination. The file will be transmitted securely to the 

20 central database. 

Agents in the field who need to access the database can 
thus be informed, for example, which cartons should be in a 
consignment and which VRs should be in which cartons. Or 
whether a given VR should be in the consignment at all. 

25 Agents will be provided with suitable means of secure 

access. 

Authorised users in the supply chain could also use the 
system to confirm either that the products they are holding are 
legitimate or to monitor the progress of expected 
3 0 deliveries. They will also be provided with the means to: 



(1) update the systertf database with information regarding 
any deliveries/ 

(2) inform the system of their own consignments; and 

(3) when a delivery consignment is broken down into 2 or 
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more despatch consignments, to provide the system with 
relevant details of the split (i.e the contents of the 
new consignments) and the new consignment identities. 

In order to protect the integrity of the database, in 
5 its preferred form, in addition to normal storage on high speed 
storage and retrieval media, it will be simultaneously stored 
on unreadable media known in the art as WORM (Write Once Read 
Many) media. Both the WORM media and standard media will be 
duplicated across a number of predetermined locations. 

.10 Its access and update protocols will be designed to 

permit such access only by means of an Access log which records 
all details of requests for access and/or any data uploaded to 
the system and stores this data on WORM media before permitting 
the data to be recorded on standard media. No deletions will 

15 be permitted and amendments will only be permitted in the form 
of corrective additions. The WORM media will thus provide a 
robust audit trail should anyone attempt to subvert the system. 
The contents of the Access log will be on permanent public view 
with standard non-disclosure rules to protect the identities 

20 of those accessing the system. 

The present invention provides a method and system that 
can be used to track products or items and can be used not only 
to verify the validity of a code or to check whether the code 
has been used before, but also to check whether the code is 

25 being used at the right time and/or in the right place. 
Failure to meet any of these criteria identifies a potential 
counterfeit. As a spin off, monitoring to this degree provides 
the ability to identify parallel trading (where the goods in 
transit might well be legitimate and even legally transported, 

30 but still in breach of cofttract or trading agreements), and to 
pinpoint wherever the goods are located in the supply chain, . 
for the purposes of inventory control and product recall . 
Subject to technology allowing remote reading of the VRs, the 
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system also provides the basis for a powerful anti- theft 
mechanism. 

Key preferred elements, among others, of the present 
invention are: 

5 Storage of authentication data in a centrally 

accessible database; 

Storage of "hash" values (only) in place of the 
valuable components of that data; 

Indexing of the "hash" values to make the data easy to 
10 search; 

Logging all access to the database in a publicly 
visible manner / 

Storing the access log on non amendable media; 
Storing the access log and data in multiple locations; 
15 Allowing additions or amendments to the data only 

through the access log; 

Allowing detailed interrogation of the data only 
through the access log. 

The system v/ill be able to achieve its goals because it 
2 0 is able to answer the fundamental question ("does this 
identity, exist?") without the need to know what the identity 
is. 

BRIEF DESCRIPTION OF THE DRAWINGS 

An embodiment of the invention will now be described by 
25 way of example only with reference to the accompanying 
drawings, in which: 

Figure 1 is a schematic flow diagram illustrating the 
operation of a product tracking system which makes use of and 
is an exemplary embodiment of the authentication aspect of the 
30 invention; 

Figure 2 is a schematic flow diagram of the consumer 
authentication operation of the system of Figure 1; 
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Figure 3 is a schematic flow diagram of the upload 
activity (by manufacturers) of the system of Figure 1/ 

Figure 4 is a schematic flow diagram of the non- 
consumer (Police, Customs etc) authentication operation of the 
5 system of Figure 1; 

Figure 5 is a schematic flow diagram of a movement 
inquiry operation of the system of Figure 1. 



DETAILED DESCRIPTION OF THE INVENTION 

Referring now in particular to Figure 1 of the 

10 drawings, an exemplary embodiment of a product tracking system 
according to the invention comprises a central database (10) 
on which are stored the "hash" values of the identity tags 
together with product tracking data. The system includes means 
(12) for processing administrative enquiries, such as the 

15 current location of a consignment of products. The system also 
includes means (14) for processing authentication enquiries, 
and means (16) for dealing with all data upload activity. These 
are standardised proxy procedures with which persons skilled 
in the art would be familiar. 

20 The authentication process is shown in more detail in 

Figure 2. The consumer can send an authentication request to 
the system in many different ways, as discussed above. In one 
such method, in response to a request from the user, an on- 
screen form is provided for the consumer to complete details 

25 such as the identity tag, product code if relevant, date and 
place of purchase. The system uses the form to prepare an 
authentication request and, if necessary, converts key data to 
a "hash" value. The data is then compared with data held in 
the database (10) whidh checks if the identity tag is 

30 legitimate, if the product is in the correct location, and 
whether or not the product has been previously registered. If 
these enquiries produce the correct results, the product is 
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authenticated and the consumer can be informed accordingly. 
If not, a suitable alarm/ report procedure, which may be 
determined by the manufacturer for example, is triggered. 

The upload activity of the system is shown in more 
5 detail in Figure 3 of. the drawings. A manufacturer has 
completed a production batch and it is ready for shipping. They 
need to upload the relevant data to the Authentication 
Database . 

All the data has been prepared by appropriate software, 

10 Each individual item will have been given its VR and the hashes 
of those VRs, together with, at least, the minimal data 
outlined above, will be transmitted by the software to the 
Authentication Database. Procedures will need to be in place 
to ensure that only authorised users can be allowed to perform 

15 this task, but other then validate themselves to the system, 
the users will have little to do other than authorise the 
transfer. Everything else would be automated. 

However, the uploading of data from a legitimate source 
is a particularly sensitive transaction. In the preferred 

20 embodiment of the system, therefore, it would be prudent to 
ensure that no upload can proceed until at least one other, 
preferably randomly selected, authorised user has been 
contacted and has confirmed the legitimacy of the upload. 

The non- consumer authentication process operates in a 

25 very similar manner to the consumer authentication process and 
is shown in more detail in Figure 4 of the drawings. 
Similarly, the data upload activity used is very similar to 
that described with reference to Figure 3 of the drawings, and 
is shown in more detail in Figure 5. 

3 0 Embodiments of the invention have been described herein 

by way of example only, dnd modifications and variations will 
be apparent to a person skilled in the art, without departing 
from the scope of the invention. 
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CLAIMS : 

1. An authentication and/or tracking system for identifying, 
tracking, authenticating anfl/or otherwise checking the 
legitimacy of one or more items which include a coded identity 

5 tag or mark, the system comprising identification means for 
reading said coded identity tag or mark and identifying said 
one or more items, storage means for storing information 
relating to the location, whether actual or intended, origin 
and/or ownership of said one or more items, and means for 
10 displaying or otherwise providing or verifying said information 
relating to an item when its identity tag or mark has been 
read. 

2. A data management system for passing or identifying data 
between a first node and a second node, said first and second 

15 nodes independently having access (direct or otherwise) to a 
copy of said data, said first node having means for converting 
said data into a substantially irreversibly encrypted code 
representative of said data and passing only said code (i.e. 
not said data) to said second node, said second node having 

20 means for identifying the data represented by said code. 

3. A system according to claim 1, wherein said identity tag 
or mark is incorporated in or on said one or more items, and 
is preferably in the form of a coded fibre or filament. 

4. A system according to claim 3, wherein said coded fibre 
25 or filament carries a barcode, which is optically readable by 

barcode reader or scanner. 

5. A system according to claim 4, wherein said bar code is 
substantially at right angles to the length of said fibre or 
filament . 
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6. A system according to any one of claims 3 to 5, wherein 
said coded fibre or filament is incorporated into a label 
carried by the or each item. 

7. A system according to claim 6, wherein said label is of 
5 paper or textile material . 

8. A system according to any one of claims 3 to 5, wherein 
said coded fibre or filament is incorporated or blended into 
the material, for example paper, textile or plastics material, 
which forms at least part of the or each item. 

10 9. A system according to any one of claims 3 to 8, wherein 
said coded fibre or filament comprises plastics material to or 
on which is applied a bar code, 

10, A system according to claim 9, wherein said bar code is 
produced by printing with fluorescent ink. 

15 11. A system according to claim 9 or claim 10, wherein said 
identity tag is produced by applying a bar code onto a plastics 
film across the effective width thereof and dividing the film 
substantially at right angles to the bar code into longitudinal 
filaments. 

20 12. A system according to any one of claims 1 to 11, 
comprising means for applying substantially identical identity 
tags or marks in, on or to each of a plurality of items in a 
batch of items to be transported from a first location to a 
second location, means for allocating an identity code to be 

25 associated with said batch, means for storing information 
associated with said identity code, said information relating 
to the location of said batch (whether actual, expected and/or 
intended) , means at said second location for logging the 
arrival of said batch and means for allocating a unique 
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identity code to each of a plurality of smaller consignments 
of items derived from said batch, means for storing information 
associated with each of said unique identity codes, said 
information relating to the'- location of each of said 
5 consignments (whether actual, expected and/or intended) . 

13. A system according to any one of claims 1 to 11, 
comprising means for applying different identity tags or marks 
in, on or to each of a plurality of items, and means for 
storing information relating to the departure of each of said 

10 items from a first location and/or its arrival at one of a 
plurality of second locations. 

14. A system according to claim 13, including means for 
identifying identity tags or marks on items leaving a 
predetermined area or location, means for identifying whether 

15 said item is legitimately permitted to leave said area or 
location, and means for raising an alarm or warning if said 
item is not permitted to leave said area or location. 

15. A system according to claim 13, including means for 
storing information relating to the contents of a batch of 

20 items having different identity tags or marks applied thereon, 
information relating to the departure of said batch from a 
first location, information relating to the arrival of said 
batch at a second location, and information relating to the 
subsequent (actual or intended) destination of each of said 

25 items. 

16. A system according to any one of claims 1 to 15, wherein 
said means for identifying said identity tag or mark comprises 
means for converting information relating to a plurality of 
identity tags or marks into substantially unique codes using 

30 a predetermined algorithm, means for storing said codes in a 
predetermined location, means for converting information 
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relating to an identity tag or mark which has been read into 
a code using said predefined algorithm, and means for comparing 
said code against said stored codes to determine whether said 
identity tag or mark is legitimate. 

5 17. A system according to claim 16, wherein said codes 
comprise "hash" values or other irreversible message digests, 
preferably having 2 0 or more characters. 

18. A system according to claim 16, or claim 17, wherein said 
information relating to the locations origin and/or ownership 

10 of said one or more items, is stored on unreadable media (in 
addition to any storage on standard media) in a number of 
predetermined alternative locations, remote from said first 
predetermined location. 

19. An authentication and/or tracking system for identifying, 
15 tracking, authenticating and/or otherwise checking the 

legitimacy of one or more items substantially as herein 
described with reference to the accompanying drawings. 

20. A method of identifying, tracking, authenticating and/or 
otherwise checking the legitimacy of one or more items which 

20 include an identity tag or mark, comprising the steps of 
reading said identity tag or mark and identifying said one or 
more items, storing information relating to the location, 
whether actual or intended, origin and/or ownership of said one 
or more items, and displaying or otherwise providing and/or 

2 5 verifying the information relating to an item when its identity 

tag or mark has been read. 

21. A method of applying substantially identical identity 
tags or marks in, on or to each of a plurality of items in a 
batch of items to be transported from a first location to a 

3 0 second location, storing information relating to the departure 
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of said batch of items from said first location and the arrival 
of said batch of items at said second location, dividing said 
batch of items into a plurality of smaller consignments of one 
or more items to be transported ar distributed from said second 
5 location to one or more third locations, and storing 
information relating to the departure of said consignments from 
said second location and their arrival at said one or more 
third locations. 

22. A method comprising the steps of applying different 
10 identity tags or marks in, on or to each of a plurality of 

items, and storing information relating to the departure of 
each of said items from a first location and/or its arrival at 
one of a plurality of second locations. 

23. A method according to claim 22, further comprising the 
15 step of storing information relating to the contents of a batch 

of items having different identity tags or marks applied 
thereon, the departure of said batch from a first location/ its 
arrival at a second location, and the subsequent (actual or 
intended) destination of each of said items in said batch. 

20 24. A method according to any one of claims 21 to 23, 

wherein said step of identifying said identity tag or mark 
comprises the sub-steps of: 

i) converting information relating to a plurality of 



25 



identity tags or marks into individual codes using a 
predefined algorithm; 



ii 



ii 



storing said codes in a first predetermined location; 
converting information relating to an identity tag or 

mark which has been read into a code using said 

••I 

predefined algorithm; and 



30 iv 



comparing said code against said stored codes to 
determine whether said identity tag or mark is 
legitimate. 
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25. A method according to claim 32, wherein said codes 
comprise "hash" values or other irreversible message digests, 
preferably having 2 0 or more characters. 

26. A method according to claim 24 or claim 25, wherein said 
5 information relating to the location, origin and/or ownership 

of said one or more items is stored in a number of other 
predetermined locations, remote from said first predetermined 
location and on unerasable media. 

27. A method according to claim 22, comprising the steps of 
10 storing purchase information relating to items having said 

identity tags or marks applied thereon, means for identifying 
the identity tags or marks of items leaving a predetermined 
area, means for determining if said item has been purchased or 
is otherwise legitimately permitted to leave said area and if 
15 not, for raising an alarm or warning. 

28 ♦ A method of identifying, tracking, authenticating and/or 
otherwise checking the legitimacy of one or more items, the 
method being substantially as herein described with reference 
to the accompanying drawings. 
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